Eyeing safer alternate options to social safety numbers, lawmakers within the U.S. are trying overseas. Today, the Senate Commerce Committee questioned former Yahoo CEO Marissa Mayer, Verizon Chief Privacy Officer Karen Zacharia, and each the present and former CEOs of Equifax on the way to shield customers towards main knowledge breaches. The consensus was that social safety numbers have gotten to go.
Rounding out the panel, Entrust Datacard President and CEO Todd Wilkinson supplied some context and perception about why the U.S. ought to certainly transfer away from social safety numbers — a step that the witnesses unanimously agreed was needed if not wholly enough to guard customers transferring ahead, in gentle of the Equifax hack.
“Over 145 million Americans’ insecure identities are now forever at risk, and they have limited ability to protect themselves,” Wilkinson mentioned. “A key question for this committee to consider is: What do we do now given these identities are forever compromised?”
Social safety numbers are a privateness nightmare. While a client who will get hacked can substitute bank card numbers and different account particulars, a social safety quantity is everlasting, linked inexorably to an actual id all through an individual’s lifespan. In the listening to, Wilkinson and most of the Senators current argued that the U.S. wants to maneuver to a dynamic system of private id, one designed with digital safety in thoughts — a stark distinction with an rigid legacy system that dates again to the 1930s.
“Some combination of digital multi-factor authentication… is the right path,” former Equifax CEO Richard Smith mentioned when requested about such a program.
Multiple occasions all through the listening to, Brazil’s Infraestrutura de Chaves Públicas system of citizen IDs by digital certificates got here up as a possible mannequin for the U.S. because it strikes ahead. In this mannequin, a certificates lasts for 3 years at most and can be utilized to situation a digital signature very like written signatures are used now. Unlike its counterpart within the U.S., these id accounts might be revoked and reissued simply by a longtime nationwide protocol.
Members of the Senate committee additionally advocated for “rigorous” knowledge safety guidelines, increasing FTC authority to implement them and stiffer penalties to inspire firms to guard customers proactively.
“The parade of high profile data breaches seems to have no end,” mentioned rating committee member Bill Nelson. “We can either take action with common sense rules or we can start planning for our next hearing on the issue.”
Last month, White House Cybersecurity Coordinator Rob Joyce made it clear that the Trump administration can be desirous about abandoning social safety numbers in favor of a safer, extra digital type of identification, stating that the type of ID has “outlived its usefulness.”
Featured Image: Douglas Sacha/Getty Images